10/501823 

£>"2fiec'(fPCT/PTO j 9 JUL an 

1 

A CRYPTOGRAPHIC REVOCATION METHOD USING A SMART CARD 

Field of the invention 

The present invention relates to the field of 
5 telecommunications and more particularly to securing 
transmissions, in particular for services, using 
cryptography. 

Description of the prior art 

10 Electronic signature mechanisms have been developed 

for authenticating the source of a document transmitted 
via telecommunications means. It should be noted that 
the term "transmission in electronic form" is routinely 
used to refer to the transmission of a document via 

15 telecommunications means. In the context of the 

invention the documents in question are necessarily in 
digital form, as opposed to paper form; the term 
"message" as used in the remainder of this application 
refers to this type of document. The most widely used 

20 electronic signature mechanisms are based on public key 
cryptographic techniques that rely on an entity known as 
a trusted authority. The trusted authority usually 
generates certificates on behalf of users of standard 
public key methods; these certificates establish a 

25 connection between a public key and the identity of the 
proprietor of the key. To use this kind of method, the 
person signing the message must first obtain 
certification from the trusted authority by communicating 
to the authority at least his public key and his 

30 identity. The method calculates an electronic signature 
for the message taking account of the content of the 
message and of the person's private key. The signatory 
sends the message, the signature and his certificate to 
the addressee of the message, who verifies the electronic 

35 signature of the message using at least the public key 
and the content of the message. For some applications, 
such as electronic voting, electronic bidding or 
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anonymous electronic payments , it is necessary to use an 
anonymous electronic signature. An anonymous electronic 
signature has the same characteristics as an ordinary 
electronic signature except that the addressee cannot 
5 determine the identity of the signatory, who remains 

anonymous. However , the addressee is able to contact the 
trusted authority, which is able to remove the anonymity 
by referring to the certificate. The anonymous group 
signature is one particular type of anonymous signature. 

10 An anonymous group signature scheme enables each member 
of a group to produce an electronic signature that is 
characteristic of the group. The addressee of a message 
accompanied by an anonymous group signature is able to 
verify that the signature was applied by one of the 

15 members of the group but is not able to determine which 
of the members of the group this was. 

In the context of the invention, a group is a set of 
persons who declare themselves to an authority as 
belonging to the same group. At the time of this 

20 declaration, each person interacts with the trusted 

authority using a particular protocol, after which the 
person obtains a private key which is associated with a 
public key of the group previously determined by the 
trusted authority, and the authority and the person 

25 obtain an identifier of the person associated with the 

private key. In the remainder of this application, each 
person is referred to as a member. One example of a 
protocol of this kind is described in the paper by 
J. Camenisch and M. Michels "Efficient Group Signature 

30 Schemes For Large Groups'', in B. Kaliski, editor, 

Advances In Cryptology - CRYPT097, Volume 1296 of LNCS, 
pages 410 to 424, Springer-Verlag, 1997. The same 
interaction occurs upon the arrival of a new member. 
From the point of view of the trusted authority, the 

35 existence of a group is reflected by assigning a group 

public key to the group and assigning a different private 
key to each member, each private key being associated 
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with the public key and an identifier. Using his private 
key, a member is able to apply an anonymous group 
signature to a message of his choice. Any addressee is 
able to verify that the signature was in fact applied by 
5 one of the members of the group, provided that the group 
public key was used. After verification, the addressee 
is certain either that the signature was applied by a 
member of the group or that it was not, as the case may 
be, but obtains no information as to the identity of that 

10 member; the signature is anonymous. However, the 

addressee may contact the trusted authority, which is 
able to determine the identity of the signatory from the 
encrypted identifier, by means of a public key of the 
trusted authority, which accompanies the group anonymous 

15 signature. Thus the trusted authority is able to remove 
the anonymity at any time . 

A group may evolve after it has been set up by the 
trusted authority. A first type of change is for new 
persons to become members of the group. A second type of 

20 change, referred to as revocation, is for members to 

leave the group or to be excluded from the group. Each 
time the group changes, the trusted authority is faced 
with the problem of assigning to or withdrawing from a 
member of the group the means for applying a group 

25 anonymous signature. The first problem that arises 

relates to assigning a new member the means for applying 
a group anonymous signature, and is solved using one of 
the prior art public key/private key generation 
algorithms that associate as many private keys as 

30 necessary with the same public key. One example of this 
kind of algorithm is described in the paper by 
J. Camenisch and M. Michels "Efficient Group Signature 
Schemes For Large Groups", in B. Kaliski, editor, 
Advances In Cryptology - CRYPT097, Volume 1296 of LNCS, 

35 pages 410 to 424, Springer-Verlag, 1997. 
Prior art 

The second problem that arises relates to 
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withdrawing these means from a person, and is solved by 
various prior art revocation methods. 

A first of these methods is described in the paper 
by E. Bresson and J. Stern "Efficient Revocation In Group 
5 Signatures", in K. Kim, editor, Public Key Cryptography - 
PKC 2001, Volume 1992 of LNCS, pages 190-206, Springer- 
Verlag, 2001. This method is based on the fact that each 
member of a group has his own identifier. Given that the 
signature must remain anonymous, it is not possible to 

10 reveal this identifier. However, in that method, the 

identifier of the signatory is divided by the identifier 
of each revoked member; the result of each division is 
different from 1 if, and only if, the signatory is not a 
revoked member. Using an encryption algorithm, each of 

15 the results of these divisions is then encrypted and the 
encrypted result is sent to the addressee, accompanied by 
particular elements. The addressee uses the particular 
elements and the encrypted results to verify that the 
divisions have been effected correctly and that all the 

20 results are different from 1, which confirms that the 
signature was applied by a non-revoked member. 

Given that there are as many encrypted results and 
particular elements as there are revoked members, this 
method has the drawback of generating a group anonymous 

25 signature whose length and calculation time increase in 
proportion to the number of revoked members. 

A second revocation method is described in the paper 
by H.J. Kim, J.I. Lim and D.H. Lee "Efficient And Secure 
Member Deletion In Group Signature Schemes", in D. Won, 

30 editor, Information Security And Cryptology - ICISC 2000, 
Volume 2015 of LNCS, pages 150 et seq., Springer-Verlag, 
2000. That method uses three keys in addition to the 
keys necessary for a successful group signature scheme, 
namely an ownership private key for each member, an 

35 ownership public key to enable each member to verify the 
validity of his key, and a renewal public key to enable 
each member to modify his ownership private key each time 
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that a member joins or leaves the group. The trusted 
authority modifies the ownership public key and the 
renewal key for each new member and for each revocation 
of a member. Each remaining member of the group modifies 
5 his ownership private key using the renewal key and 

verifies its validity using the ownership public key. To 
sign a message electronically, the signatory member uses 
his ownership private key. Thus the addressee is able to 
verify the electronic signature using the ownership 

10 public key. This method has the drawback of being of 

specific application in that it has proven to be secure 
only in a particular group signature scheme that 
corresponds to the one described in the paper by J. 
Camenisch and M. Michels M A Group Signature Scheme With 

15 Improved Ef f iciency", in K. Ohta and D. Pei, editors, 
Advances In Cryptology - ASIACRYPT' 98 , Volume 1514 of 
LNCS, pages 160-174, Springer-Verlag, 1998. Furthermore, 
that method has the disadvantage that it imposes 
calculations on each member each time that a member joins 

20 or leaves the group; those calculations may become 

frequent if the dynamics of the group are particularly 
intense . 

One objective of the invention is to remove the 
drawbacks of the prior art methods described above. 

25 

Summary of the invention 

To this end, the present invention provides a 
cryptographic method implemented by a smart card of a set 
of smart cards each belonging to a first entity that may 

30 be different for each smart card, each smart card being 
equipped with a chip comprising storage means in which 
are stored a secret key and an identifier of the first 
entity that is the proprietor of the smart card and 
calculation means which execute a cryptographic algorithm 

35 whose input arguments include at least the secret key. 
The cryptographic method of the invention comprises the 
following steps: 



- before any calculation by the calculation means of 
the chip of the smart card, the chip reads in storage 
means of a second entity a list of identifiers in 
complete form of first entities that are smart card 

5 proprietors, said list being linked to each status 
assigned to each of the first entities by the second 
entity, and 

- the chip compares the identifiers stored in the 
storage means of the chip and the contents of the list to 

10 authorize or prohibit calculation by the calculation 
means as a function of the result of the comparison. 

The invention further provides a smart card for 
implementing the above kind of method. 

The method of the invention consists in using the 

15 chip on the smart card to prohibit any cryptographic 

calculation implemented in the chip if the status of the 
proprietor of the smart card is set to "revoked" by the 
second entity. Otherwise, the status of the proprietor 
of the smart card is set to "non-revoked" and the chip 

20 authorizes the calculation. The second entity, which is 
typically a trusted authority, maintains an updated list 
of the identifiers of each smart card proprietor, whose 
status is either revoked or non-revoked. The second 
entity stores this list in storage means connected to a 

25 telecommunications network. The smart card may access 
those storage means via a smart card reader associated 
with a computer, such as a personal computer, connected 
to the telecommunications network. 

Thus a revoked member is not able to carry out any 

30 cryptographic calculation. If the cryptography algorithm 
installed in the chip is an anonymous signature 
calculation algorithm, the proprietor of the smart card 
is not able to use his smart card to sign a file if he 
has been revoked. 

35 The method of the invention may be implemented in 

particular ways; some implementations are listed below, 
although the following list is not to be regarded as 



exhaustive . 

In one particular embodiment, the list comprises the 
identifiers of revoked entities, in which case the list 
is called a black list. 
5 In another embodiment, the list comprises the 

identifiers of non-revoked entities, in which case the 
list is called a white list. 

In another embodiment, the list is signed by the 
second entity, which calculates the signature using a 

10 signature algorithm, which may be an asymmetric public 
key algorithm, such as the RSA algorithm (RSA are the 
first letters of the surnames of the inventors of the 
algorithm) . Before authorization, the chip verifies the 
validity of the signature. In the case of a public key 

15 signature algorithm, the chip verifies the signature by 
means of the same asymmetric algorithm and using the 
public key as an input argument. This verification 
authenticates the entire list and therefore verifies its 
integrity. 

20 In another embodiment, each identifier from the list 

is associated with a count value and each set formed of 
the identifier and the associated count value is signed 
by the second entity. The list comprises a value for the 
number of identifiers in the list and a signature for 

25 that value. Each signature is calculated in the same way 
as in the previous embodiment. Before authorization, the 
chip verifies the validity of each signature. This 
verification authenticates each identifier from the list, 
the associated count value and the read value of the 

30 number of identifiers. The chip also increments a 

counter each time an identifier is read, taking account 
of the count value associated with the read identifier, 
and then compares the counter to the authenticated value 
before authorizing calculation by the chip. This 

35 comparison verifies the integrity of the number of read 
identifiers . 

Other features and advantages of the invention 
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become apparent in the course of the following 
description, which is given with reference to the 
appended drawings, which show embodiments of the 
invention by way of non-limiting example. 

5 

Brief description of the drawings 

Figure 1 is a flowchart of a cryptographic method of 
the invention. 

Figure 2 is a flowchart of a first embodiment of a 
10 cryptographic method of the invention. 

Figure 3 is a flowchart of a second embodiment of a 
cryptographic method of the invention. 

Figure 4 is a flowchart of an example of the 
implementation by a chip of the second embodiment of a 
15 cryptographic method of the invention. 

Figure 5 is a diagram of a smart card of the 
invention . 

Detailed description of embodiments of the invention 

2 0 The method is implemented by a smart card of a set 

of smart cards each of which belongs to a first entity. 
The first entity, typically a physical person, may be 
different for each smart card. Each smart card is 
equipped with a microchip that comprises storage means 

25 and calculation means. A secret key and an identifier of 
the first entity that is the proprietor of the smart card 
are stored in the storage means. A cryptographic 
algorithm whose input arguments include the secret key is 
implemented in the calculation means . 

30 The cryptographic algorithm may be a group signature 

calculation algorithm, an encryption algorithm, or a 
decryption algorithm. 

One example of a group signature calculation 
algorithm is described in the paper by J. Camenisch and 

35 M. Stadler "Efficient group signature schemes for large 
groups", in B. Kaliski, editor, Advances in Cryptology - 
CRYPT097, Volume 1296 of LNCS, pages 410 to 424, 



Springer-Verlag, 1997. Another description is given in 
the paper by J. Camenisch and M. Michels "A group 
signature scheme with improved efficiency", in K. Ohta 
and D. Pei, editors, Advances in Cryptology - 
5 ASIACRYPT' 98 , Volume 1514 of LNCS, pages 160-174, 

Springer-Verlag, 1998. The RSA algorithm may be used as 
an encryption/decryption algorithm. 

The method comprises a plurality of steps described 
below. For signing, encrypting or decrypting, the chip 

10 activates the calculation means, which calculate output 
data as a function of input arguments presented to the 
input of the cryptographic algorithm. 

Prior to any calculation 1 by the calculation means 
of the chip in the smart card, the chip reads a list of 

15 identifiers in complete form of first entities that are 
smart card proprietors. This list is stored in storage 
means of a second entity (operation 2) . In an entirely 
equivalent manner, a list read in the storage means of a 
second entity may be written to the chip. Any reading 

20 operation referred to in the remainder of the description 
may be replaced in an entirely equivalent manner by a 
writing operation. The list is linked to the status 
assigned to each of the first entities by the second 
entity. The second entity sets this status to "revoked" 

25 or "non-revoked" . The list contains either the first 
entities that have been revoked, in which case it is 
called a black list, or the first entities that have not 
been revoked, in which case it is called a white list. 
The second entity stores this list in storage means 

30 accessible via a telecommunications network. The storage 
means may comprise memory space on a server or on a mass 
storage device, for example. 

The chip then compares the identifier stored in the 
storage means of the chip and the content of the list 

35 (operation 3) . If, following this comparison, the chip 
finds that the first entity has been revoked, it 
prohibits calculation by the calculation means (operation 
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4). But if, following this comparison, the chip finds 
that the first entity has not been revoked, it authorizes 
calculation by the calculation means (operation 5) . 

The method used by a chip to carry out the above 
5 comparison is as follows. The chip initializes a flag to 
1. It compares each identifier read in succession to the 
identifier stored in the chip; if they are not identical, 
the chip sets the flag to 1; if they are identical it 
sets the flag to 0. After comparing each read identifier 

10 and the identifier stored in the chip, the chip prohibits 
calculation by the calculation means if the flag is at 1 
and authorizes calculation by the calculation means if 
the flag is at 0 . 

Figure 2 shows a first embodiment of the 

15 cryptographic method of the invention. This embodiment 

comprises the steps described with reference to Figure 1, 
which are not described again, and additional steps 
described hereinafter. At the same time as reading the 
list, and in the same memory area, the chip reads a 

20 signature from the list (operation 10) . The signature is 
calculated beforehand by calculation means of the second 
entity. Before the chip authorizes calculation by the 
calculation means (operation 5) , it verifies the 
validity of the signature in order to authenticate the 

25 list and to verify its integrity (operation 11) . If the 
signature is not valid, the chip prohibits calculation by 
the calculation means (operation 4); otherwise it 
authorizes calculation (operation 5) . 

Figure 3 shows a second embodiment of the 

30 cryptographic method of the invention. This embodiment 
includes the steps described with reference to Figure 1, 
which are not described again, and additional steps 
described hereinafter. At the same time as reading the 
list, and in the same memory area, the chip also reads a 

35 count value associated with each identifier, a signature 
for each set, comprising an identifier from this list and 
an associated count value, the value of the number of 
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identifiers in the list, and a signature for that value 
(operations 12, 13, 14). The signature for each 
identifier and the associated count value, the value of 
the number of identifiers, and the signature for that 
5 value are calculated beforehand by calculation means of 
the second entity and stored in the same memory area as 
the list. To count the number of identifiers, the chip 
increments a counter each time that the chip reads an 
identifier, taking account of the count value associated 

10 with the identifier (operation 15) . Before the chip 
authorizes calculation by the calculation means 
(operation 5) , it verifies the validity of each of the 
signatures to authenticate each identifier from the list 
and the number of identifiers, respectively (operations 

15 16, 17). If any of the signatures is not valid, the chip 
prohibits calculation (operation 4) . 

After reading the list of identifiers, the chip 
compares the value of its counter to the read value of 
the number of identifiers (operation 18). If these 

20 values are different, the chip prohibits calculation by 

the calculation means (operation 4). If these values are 
identical, the chip verifies the validity of the 
signature for the value of the number of identifiers 
(operation 17). Figure 4 shows the use of this second 

25 embodiment by a chip. The chip initializes a flag to 1 
and a counter to 0 (operation 19) . The chip reads an 
identifier from the list, the associated count value, and 
their signature and increments the counter (operation 
20) . The chip compares the flag to 0 (operation 21) . If 

30 the flag is not at 0, the chip compares the identifier 

read to the identifier stored in the chip (operation 22); 
if they are not identical, the chip sets the flag to 1 
(operation 23); otherwise it sets the flag to 0 
(operation 24). After comparing the read identifier and 

35 the identifier stored in the chip, or if the flag is at 

0, the chip verifies the validity of the signature of the 
combination of the read identifier and the associated 
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count value (operation 25) . If the signature is not 
valid, the chip prohibits calculation by the calculation 
means (operation 4) . But, if the signature is valid, the 
chip waits for the next identifier (operation 26) or, if 
5 there are no more identifiers in the list, the chip reads 
the value of the number of identifiers and its signature 
(operation 27). The chip compares the value of the 
number of identifiers with the value of its counter 
(operation 18). If these values are different, the chip 

10 prohibits calculation by the calculation means ( operation 
4); otherwise the chip verifies the validity of the 
signature of the value of the read number (operation 17). 
If the signature is not valid, the chip prohibits 
calculation by the calculation means (operation 4) . If 

15 the signature is valid, the chip tests the value of the 

number of identifiers (operation 28). If the flag is not 
at 1, the chip prohibits calculation by the calculation 
means (operation 4), as this means that the member has 
been revoked. Otherwise, the chip authorizes calculation 

20 by the calculation means (operation 5). 

Figure 5 is a diagrammatic representation of a smart 
card of the invention. 

The smart card 30 is equipped with a chip 31 which 
comprises storage means 32, calculation means 33, means 

25 34 for reading storage means of a second entity via a 

telecommunications network, and means 35 for authorizing 
calculation by the calculation means. 

The storage means 32 store a secret key and an 
identifier of a first entity, i.e. the proprietor of the 

30 smart card. 

The calculation means 33 execute a cryptographic 
algorithm whose input arguments include the secret key. 
The calculation means 33 are connected to the storage 
means 32. 

35 The reading means 34 are used to read a list of 

identifiers in the storage means of the second entity via 
a telecommunications network. The reading means 34 send 
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the read data to the calculation means 33 and/or to the 
authorization means 35 via connections to each of those 
means . 

The authorization means 35 authorize calculation by 
5 the calculation means 33 as a function of the results of 
comparing the identifier and the contents of the list. 

A smart card 30 of the above kind is used to 
implement a method of the invention. 

A first application of a method of the invention is 
10 to electronic voting, which comprises two phases: 

- registration on an electoral list by an 
administrative authority, and 

- voting using a ballot box connected via a 
communications network to a voting administration server. 

15 When registering, the elector obtains in a smart 

card a personal private key and a group private key. The 
anonymous signature that the elector may produce using 
his smart card and his personal private key is referred 
to as "correlatable" . This means that, if the elector 

20 attempts to sign a second voting slip anonymously by 

producing an anonymous signature, the slip is rejected by 
the ballot box. Because the anonymous signature is 
correlatable, the ballot box is able to verify that this 
is a second anonymous signature. 

25 A malicious elector is not able to claim that he has 

lost his group private key and receive another one, and 
thus be in a position to vote twice. A method of the 
invention prohibits him from using the first group 
private key, as this group private key is updated when he 

30 declares that he has lost the first group private key. 

The loss of a group private key by a member is managed by 
a method of the invention in the same way as revocation 
of the member. 

A second application of a method of the invention is 

35 to electronic bidding. Bidding involves three 

protagonists, namely a server, a trusted authority and a 
client. All clients form a client group. A user wishing 
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to subscribe to a client group must contact the trusted 
authority, which supplies his personal private key in a 
smart card. He thus obtains the right to produce a group 
anonymous signature. Using this right, he is able to 
5 sign each of his bids anonymously. At the time of a bid 
for a certain product, each member of the client group 
may bid by signing a message containing in particular 
details of the product on sale and the amount of his bid. 
The bidding server is then able to verify that he belongs 

10 to the group, and thus that the bid is valid, by 

verifying the group anonymous signature. The winner is 
the person submitting the highest bid prior to 
adjudication. The last message received by the bidding 
server is therefore that from the winner. The server 

15 then sends this message and the corresponding group 

anonymous signature to the trusted authority, which alone 
is able to remove the anonymity and thus to determine the 
physical identity of the purchaser of the product bid 
for . 

20 Bidding involves dynamic groups as new persons may 

be registered with the group every day and a member may 
leave the group or be excluded for fraud at any time. It 
is therefore essential to set up a revocation device to 
prevent a revoked member using his signature 

25 fraudulently. A revoked member could continue to use his 
group private key to bid and thus corrupt the bidding 
process, for example by upping the bidding. If he is 
careful to withdraw from the bidding process soon enough 
not to make the winning bid, the fraud will go 

30 undetected, since only the identity of the winner is 

finally revealed. A method of the invention solves the 
problem of revocation of one or more members of the 
group . 

A third application of a method of the invention is 
35 to electronic payment. This involves four protagonists, 
namely a customer, a trader, a bank and a trusted 
authority. Each customer must identify himself to the 
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system and obtain a group private key stored in a smart 
card before being able to carry out his first 
transaction. To make a payment, the customer must 
withdraw electronic "cash" from his bank. Thanks to the 
5 use of a blind signature scheme, the cash C he withdraws 
is anonymous. The cash C is spent in the following 
manner: using his smart card, the customer generates a 
group signature applying to the cash C and sends the 
combination of the signature and the cash C to a trader. 

10 The trader verifies the signature of the bank attached to 
the cash C and verifies the group signature. If each of 
the two signatures is valid, the trader accepts the 
transaction. At a given time of day, the trader sends 
his bank the signatures and cash received in payment, for 

15 transfer to his account. In the event of fraud, for 

example use of the same cash in multiple transactions, 
the bank sends the group signature applying to the 
contested cash to the trusted authority in order for it 
to identify and sanction the wayward customer. 

2 0 A reliable mechanism for revoking keys that have 

been compromised is necessary to prevent fraud of the 
following type: a dishonest customer reports to the 
trusted authority the loss of his group private key s^ and 
thereby declines to accept any liability for fraud 

25 carried out using the key s. The customer hands his key 
over to an accomplice, who is then able to use the key s 
to sign cash c legitimately withdrawn from the bank and 
then spend the cash as many times as he wishes. A method 
of the invention solves the problem of revoking the keys 

30 s . 



